This repository has been archived by the owner on Apr 26, 2024. It is now read-only.
Shutdown room API should somehow indicate to other homeservers that a content violation has occurred #2692
Labels
Security
T-Enhancement
New features, changes in functionality, improvements in performance, or user-facing enhancements.
Comments
|
This is quite related to element-hq/riot-meta#175 - we may want to do both at the same time, as it’s not great to leave other HSes unaware when we shutdown a room due to abuse... |
H-Shay
added
the
T-Enhancement
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Currently the API successfully blocks the room for anyone on the homeserver, and anyone who attempts to join via the homeserver, however it does not tell other homeservers in the room about the room shutdown.
Where possible, the user creating the notification room could join and send some kind of
m.content.abuseevent before leaving again. Considering it can't really take over the room, this may be the best bet for other homeservers to be aware of what happened for at least public rooms.Another option is some kind of federation-level API where a homeserver can communicate what it did (ie: "I shut down this room for "). This would leave the homeserver to decide what to do about it, if anything.
This is more of a concern for bots like voyager, where they end up remaining in the room with no knowledge of what is going on in the room. All it sees is an evacuation of the room, but it has no idea why. Some kind of flag to say "hey, this room has some bad content in it" would help voyager make the decision to automatically flag the room for review, ending in the room being purged from the graph.
Other homeservers may wish to make use of this for the purposes of also shutting the room down on their end, in the event that the room is still active for their users.
The text was updated successfully, but these errors were encountered: